diff --git a/README.md b/README.md index 10577c9..82d343c 100644 --- a/README.md +++ b/README.md @@ -1,10 +1,12 @@ # action-infisical -A GH action that retrieves secrets from Infisical using an API instead of installing a client binary and outputs them to a file. +A GitHub action that retrieves secrets from Infisical using an API instead of installing a client binary and outputs them to a file. This allows it to be really fast. -**NOTE 1**: This action depends on `jq` and `curl` being installed in the environment where it is run. +This action **is unofficial** and was created by the [zerodays](https://github.com/zerodays) team for our own internal use. Feel free to use it, but note that it is not officially supported by Infisical. -**NOTE 2**: In order to use this GitHub Action, you need to **disable E2EE** in Infisical for the workspace in question. This has some security implications - do this at your own risk. +**NOTE 1**: In order to use this GitHub Action, you need to **disable E2EE** in Infisical for the workspace in question. This has some security implications - do this at your own risk. + +**NOTE 2**: This action depends on `jq` and `curl` being installed in the environment where it is run. ## Inputs diff --git a/action.yml b/action.yml index ca36e1d..c7266f0 100644 --- a/action.yml +++ b/action.yml @@ -1,5 +1,8 @@ name: 'Fetch and Format Infisical Secrets' description: 'Fetch secrets from Infisical and output them to a specified file' +branding: + icon: 'arrow-down-circle' + color: 'yellow' inputs: infisical_token: description: 'Infisical API Token' @@ -31,3 +34,5 @@ runs: curl "${{ inputs.api_url }}/api/v3/secrets/raw?environment=${{ inputs.environment }}&secretPath=${{ inputs.secret_path }}&workspaceId=${{ inputs.workspace_id }}" \ --header "Authorization: Bearer ${{ inputs.infisical_token }}" \ | jq -r '.secrets[] | "\(.secretKey)=\(.secretValue)"' > ${{ inputs.output_file }} + - shell: bash + run: echo "Secrets fetched and formatted to ${{ inputs.output_file }}". \ No newline at end of file